Malware Attack Utilizing IcedID Compromises Active Directory Domain A recent incident involving IcedID malware has raised significant alarms within the cybersecurity community, highlighting the persistent threat posed by sophisticated attacks. Within just 24 hours of gaining initial access, the threat…
Blockchain & Cryptocurrency, Cryptocurrency Fraud, Fraud Management & Cybercrime In Focus: Cybercriminals Utilize Ethereum Smart Contracts to Conceal Malicious npm Code Rashmi Ramesh (rashmiramesh_) • September 11, 2025 Image: Shutterstock In a weekly summary by Information Security Media Group, notable…
On Tuesday, Apple unveiled a new lineup of iPhones featuring the innovative A19 and A19 Pro chips. Among these devices is a sleek iPhone Air, along with several redesigned models. However, it is a subtle yet significant enhancement—Memory Integrity Enforcement—that…
Recent cybersecurity investigations have revealed a convergence between two notorious ransomware groups: Black Basta and CACTUS. Both factions have been exploiting a shared BackConnect (BC) module, facilitating persistent control over compromised systems. This development hints at a potential shift, suggesting…
Children in the U.K. are increasingly engaging in cybersecurity incidents within educational institutions, surprising many parents. The Information Commissioner’s Office (ICO) reports that students are responsible for over half of data breaches in schools. According to an ICO analysis based…
Recent investigations into cybersecurity threats have unveiled a significant player linked to China, known as Earth Alux. This group has targeted critical sectors, including government, technology, logistics, manufacturing, telecommunications, IT services, and retail, particularly across the Asia-Pacific (APAC) and Latin…
A malware campaign targeting users of the 20Speed VPN service has come to light, utilizing contaminated VPN installers to deploy a surveillance program identified as EyeSpy. This operation, flagged by Bitdefender, has reportedly been ongoing since May 2022. The malicious…
Healthcare, Industry Specific, Regulation Experts Recommend Tool Designed for Smaller Organizations Marianne Kolbasuk McGee (HealthInfoSec) • September 10, 2025 Image: Getty Images Federal officials have released an updated version of their HIPAA Security Risk Assessment (SRA) tool, which has historically…
A cyber attack on a third-party supplier has compromised passenger contact details and journey data for the London North Eastern Railway (LNER), a UK-based train operator. While no financial information or passwords were accessed, passengers are urged to remain vigilant.…
The rapid transition to cloud services, SaaS applications, and remote work arrangements has resulted in a profound transformation of enterprise operations. While these technological advancements open new avenues for growth, they simultaneously introduce a myriad of complexities that present significant…
